Threat Post

Oracle: Unpatched Versions of WebLogic App Server Under Active Attack

CVE-2020-2883 was patched in Oracle’s April 2020 Critical Patch Update – but proof of concept exploit code was published shortly after. Oracle is urging customers to fast-track a patch for a critical ...
ZDNet

Oracle publishes rare out-of-band security update for WebLogic servers

Oracle has published on Sunday a rare out-of-band security update to address an incomplete patch for a recently disclosed vulnerability in Oracle WebLogic servers that is currently being actively ...
Threat Post

Oracle Rushes Emergency Fix for Critical WebLogic Server Flaw

The remote code-execution flaw (CVE-2020-14750) is low-complexity and requires no user interaction to exploit. Oracle has released a rare out-of-band patch for a ...
Dark Reading

Researchers Analyze Oracle WebLogic Flaw Under Attack

Oracle recently urged customers to deploy its April 2020 Critical Patch Update to address CVE-2020-2883, a vulnerability affecting multiple versions of the Oracle WebLogic Server. Both the company and ...
Arabian Post

WebLogic flaw becomes an instant target

Oracle WebLogic operators are under pressure to close a critical security gap after attackers began probing and exploiting a newly disclosed flaw on the same day public exploit code appeared, ...
InfoWorld

Oracle hit with patent lawsuit over WebLogic Server

Oracle is finding itself caught up in another Java-related patent lawsuit, but this time it’s the one getting sued. Java middleware vendor Thought filed suit against Oracle on Oct. 31, claiming that ...